Messages

1

22.1 Legacy Series / Re: os-ddclient

« on: May 22, 2023, 09:54:05 pm »

Hi,

I tried to move from a Cloudflare-ddns Docker container to os-ddclient, but I can't make it work at the moment.

I have several domain names to update, on the same Cloudflare account, and my Cloudflare API token includes all zones of this account.

So each of my domain names is configured as such:
- Service: Cloudflare
- Username: <empty>
- Password: <cloudflare_account_api_token>
- Wildcard: unchecked (I only want to update my domain names, because I use CNAMES for subdomains)
- Zone: <example.com>
- Hostname(s): <example.com> (exactly like Zone)
- Check ip method: Interface
- Interface to monitor: WAN_832 (device: vlan0.832, like this configuration https://docs.opnsense.org/manual/how-tos/orange_fr_fttp.html)
- Force SSL: checked

I tried at first to update all my domain names in the same Cloudflare service, like what I was doing in a cloudflare-ddns Doker container, but I get a lot of errors. So I have separated the domain names like the configuration above, one entry for each, but I see no "Current IP", nor "Updated" in the Dynamic DNS service.

In the logs, I get the same Notice every five minutes:

Code: [Select]

2023-05-22T23:21:31 Notice ddclient[33961] 94731 - [meta sequenceId="3"] FAILED: Unable to obtain information for 'vlan0.83' -- missing ip or ifconfig command
2023-05-22T23:21:31 Notice ddclient[33961] 93072 - [meta sequenceId="2"] FAILED: Unable to obtain information for 'vlan0.83' -- missing ip or ifconfig command
2023-05-22T23:21:31 Notice ddclient[33961] 92075 - [meta sequenceId="1"] FAILED: Unable to obtain information for 'vlan0.83' -- missing ip or ifconfig command
Two things:
- the device is "vlan0.832", but the logs specified "vlan0.83", like if it is truncated
- my WAN_832 as an IPv4, but no IPv6. Only an IPv6 delegated prefix which is tracked by my LAN interfaces.

In the Cloudflare interface, the API-token is refreshed all fives minutes, so there is a communication.

Thanks for your help.

2

General Discussion / Re: Modify or add an IPv6 link-local address for LAN interface

« on: May 04, 2023, 09:21:50 pm »

Hi Franco,

It works, thank you!

(Not possible to use the same IPv6, like "fe80::1/64", but it's sufficient to use an easy to remember address.)

3

General Discussion / Re: Modify or add an IPv6 link-local address for LAN interface

« on: April 30, 2023, 04:15:27 pm »

It should be there already, check out Interfaces->Overview, it should display the link-local address. The address is deterministic, it's based on the interface's MAC address (EUI-64).

Yes, I want to use another, simplier, IPv6 link-local address. Like fe80::1/64. It is possible on Cisco routers for example.

Theoretically, fe80::1/64 is a perfectly legal address and you you be able to set it, but it does not seem to be possible from OpnSense GUI as a VIP.

You could modify the interface MAC in order to get another EUI-64 from that, but it contains ff:fe in the middle.

Ok, thank you.

I will look for a way to modify it in command line, but not sure if it is possible.

4

General Discussion / Modify or add an IPv6 link-local address for LAN interface

« on: April 30, 2023, 09:31:39 am »

Hi!

First post here, thank you for this great firewall, which I am currently trying to configure for my needs with IPv6.

I was wondering if there is a way to modify, or add IPv6 link-local addresses for each of my LAN interfaces (fe80::XXXX:XXXX:XXXX:XXXX/64).

To simplify the gateway of my servers in theses LAN.

Thanks!